Skip to content

Add SOPS-encrypted prod/dev env backups#1075

Open
reinamora137 wants to merge 1 commit into
devfrom
feat/sops-prod-env-backup
Open

Add SOPS-encrypted prod/dev env backups#1075
reinamora137 wants to merge 1 commit into
devfrom
feat/sops-prod-env-backup

Conversation

@reinamora137
Copy link
Copy Markdown
Contributor

@reinamora137 reinamora137 commented Mar 1, 2026

Summary

  • SOPS+age encrypted copies of production and dev .env files from EC2 instance stampmint3-prod2
  • Provides version-controlled secret history for disaster recovery
  • Deleted deprecated stamp/.env on the EC2 instance

Files

File Source Contents
env-backups/indexer-prod.env.enc btc_stamps/indexer/.env RDS creds, AWS keys, API keys
env-backups/stampsdev.env.local.enc stampsdev/btc_stamps/.env.local Local dev MySQL config
env-backups/README.md Decrypt/update instructions

Decrypt

sops decrypt --input-type dotenv --output-type dotenv env-backups/indexer-prod.env.enc > indexer-prod.env

Requires age private key at ~/.config/sops/age/keys.txt (DGX workspace only).

Test plan

  • Verify encrypted files decrypt correctly with age key
  • Confirm no plaintext secrets in the committed files

🤖 Generated with Claude Code

@claude
feat(sops): add encrypted prod/dev env backups from EC2 instance
bf292c2 
SOPS+age encrypted copies of production and dev .env files from
stampmint3-prod2 (i-0b10c4b7bdfc57a62). Provides version-controlled
secret history for disaster recovery.

Files:
- env-backups/indexer-prod.env.enc — production indexer config
- env-backups/stampsdev.env.local.enc — dev environment config

Also cleaned up deprecated stamp/.env on the EC2 instance.

Decrypt: sops decrypt --input-type dotenv --output-type dotenv <file>

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 1, 2026

✅ Import Pattern Validation Report

📊 Summary

Metric Value
Files Scanned 1036/1036
Total Violations 6
Compliance Rate 🏆 99.7%
Scan Time 152ms

📋 Violations by Type

  • ℹ️ relative-deep-import: 6

💡 Recommendations

  • ⚠️ Address warning violations to improve code maintainability
  • 📁 Consider using absolute imports instead of deep relative paths
  • 🏃 Consider implementing import pattern linting in your editor

⚡ Performance

Analyzed 1036 files in 152ms (6815.789473684211 files/sec)

This report was generated by the Import Pattern Validation workflow

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 1, 2026

🔍 Code Quality Check Results

All checks passed!

✅ Format Check Passed

✅ Lint Check Passed

✅ SSR Safety Check Passed

✅ Response Pattern Check Passed

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 1, 2026

✅ API Schema Validation Results

Schema Validation Passed

  • Tests Passed: 2/2
  • Tests Failed: 0/2

All schema validation tests passed!

API response structures are consistent with the OpenAPI schema contract.

View detailed results in the workflow artifacts

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 1, 2026

🧪 Newman Integration Test Results (API)

⚠️ Integration Test: These tests hit live API endpoints and require database access.

❌ API Tests Failed

Some tests did not pass. Please check the detailed report.

📊 Regression Analysis

📎 Resources

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Mar 1, 2026

🧪 Newman Local Dev Test Results

Local Dev Server: Tests run against localhost:8000 with MySQL + Redis

❌ Local Dev Tests Failed

Some tests did not pass against the local dev server. Please check the detailed report.

📎 Resources

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@reinamora137 @claude